[Secure-testing-commits] r27026 - data/CVE
Federico Ceratto
federico-guest at moszumanska.debian.org
Fri May 23 23:14:02 UTC 2014
Author: federico-guest
Date: 2014-05-23 23:14:02 +0000 (Fri, 23 May 2014)
New Revision: 27026
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-05-23 14:41:02 UTC (rev 27025)
+++ data/CVE/list 2014-05-23 23:14:02 UTC (rev 27026)
@@ -61,11 +61,11 @@
CVE-2014-3809
RESERVED
CVE-2014-3808 (Multiple cross-site scripting (XSS) vulnerabilities in BarracudaDrive ...)
- TODO: check
+ NOT-FOR-US: BarracudaDrive
CVE-2014-3807 (Multiple cross-site scripting (XSS) vulnerabilities in BarracudaDrive ...)
- TODO: check
+ NOT-FOR-US: BarracudaDrive
CVE-2014-3806 (Directory traversal vulnerability in cgi-bin/help/doIt.cgi in VMTurbo ...)
- TODO: check
+ NOT-FOR-US: VMTurbo Operations Manager
CVE-2014-3805
RESERVED
CVE-2014-3804
@@ -73,7 +73,7 @@
CVE-2014-3803 (The SpeechInput feature in Blink, as used in Google Chrome before ...)
TODO: check
CVE-2014-3802 (msdia.dll in Microsoft Debug Interface Access (DIA) SDK, as ...)
- TODO: check
+ NOT-FOR-US: Microsoft Visual Studio
CVE-2014-3799
RESERVED
CVE-2014-3798
@@ -89,9 +89,9 @@
CVE-2014-3793
RESERVED
CVE-2014-3792 (Cross-site request forgery (CSRF) vulnerability in Beetel 450TC2 ...)
- TODO: check
+ NOT-FOR-US: Beetel Router
CVE-2014-3791 (Stack-based buffer overflow in Easy File Sharing (EFS) Web Server 6.8 ...)
- TODO: check
+ NOT-FOR-US: Easy File Sharing
CVE-2014-3790
RESERVED
CVE-2014-3789
@@ -99,7 +99,7 @@
CVE-2014-3788
RESERVED
CVE-2014-3787 (SAP NetWeaver 7.20 and earlier allows remote attackers to read ...)
- TODO: check
+ NOT-FOR-US: SAP NetWeaver
CVE-2013-7385 (LiveZilla 5.1.2.1 and earlier includes the MD5 hash of the operator ...)
TODO: check
CVE-2013-7384 (UnrealIRCd 3.2.10 before 3.2.10.2 allows remote attackers to cause a ...)
@@ -171,7 +171,7 @@
CVE-2014-3751
RESERVED
CVE-2014-3750 (The Bilyoner application before 2.3.1 for Android and before 4.6.2 for ...)
- TODO: check
+ NOT-FOR-US: Bilyoner for Android
CVE-2014-3748
RESERVED
CVE-2014-3747
@@ -195,7 +195,7 @@
CVE-2014-3736
RESERVED
CVE-2014-3735 (ir41_32.ax 4.51.16.3 for Intel Ideo Video 4.5 allows remote attackers ...)
- TODO: check
+ NOT-FOR-US: Intel Ideo Video
CVE-2014-3734
RESERVED
CVE-2014-3733
@@ -814,7 +814,7 @@
- qemu-kvm <removed>
NOTE: http://article.gmane.org/gmane.comp.emulators.qemu/272322
CVE-2014-3460 (Directory traversal vulnerability in the DumpToFile method in the ...)
- TODO: check
+ NOT-FOR-US: NetIQ Sentinel
CVE-2014-3459
RESERVED
CVE-2014-3458
@@ -864,7 +864,7 @@
CVE-2014-3453 (Eval injection vulnerability in the flag_import_form_validate function ...)
NOT-FOR-US: Drupal module
CVE-2014-3444 (The GetGUID function in codecs/dmp4.dll in RealNetworks RealPlayer ...)
- TODO: check
+ NOT-FOR-US: RealNetworks RealPlayer
CVE-2014-3443 (JetMPAd.ax in JetAudio 8.1.1 and earlier allows remote attackers to ...)
NOT-FOR-US: JetAudio
CVE-2014-3442
@@ -915,7 +915,7 @@
CVE-2014-3413
RESERVED
CVE-2014-3412 (Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when ...)
- TODO: check
+ NOT-FOR-US: Juniper Junos Space
CVE-2014-3411 (Unspecified vulnerability in the NSM XDB service in NSM before ...)
TODO: check
CVE-2014-3410
@@ -1193,29 +1193,29 @@
CVE-2014-3274
RESERVED
CVE-2014-3273 (The LLDP implementation in Cisco IOS allows remote attackers to cause ...)
- TODO: check
+ NOT-FOR-US: Cisco IOS
CVE-2014-3272
RESERVED
CVE-2014-3271 (The DHCPv6 implementation in Cisco IOS XR allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Cisco IOS XR
CVE-2014-3270 (The DHCPv6 implementation in Cisco IOS XR allows remote attackers to ...)
- TODO: check
+ NOT-FOR-US: Cisco IOS XR
CVE-2014-3269 (The SNMP module in Cisco IOS XE 3.5E allows remote authenticated users ...)
- TODO: check
+ NOT-FOR-US: Cisco IOS XE
CVE-2014-3268 (Cisco IOS 15.2(4)M4 on Cisco Unified Border Element (CUBE) devices ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Border Element
CVE-2014-3267
RESERVED
CVE-2014-3266
RESERVED
CVE-2014-3265 (Cross-site scripting (XSS) vulnerability in the Auto Update Server ...)
- TODO: check
+ NOT-FOR-US: Cisco Security Manager
CVE-2014-3264 (Cisco Adaptive Security Appliance (ASA) Software 9.1(.5) and earlier ...)
- TODO: check
+ NOT-FOR-US: Cisco Adaptive Security Appliance
CVE-2014-3263 (The ScanSafe module in Cisco IOS 15.3(3)M allows remote attackers to ...)
NOT-FOR-US: Cisco IOS
CVE-2014-3262 (The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS ...)
- TODO: check
+ NOT-FOR-US: Cisco IOS
CVE-2014-3261
RESERVED
CVE-2014-3260
@@ -3896,7 +3896,7 @@
RESERVED
NOT-FOR-US: Cisco
CVE-2014-2199 (meetinginfo.do in Cisco WebEx Event Center, WebEx Meeting Center, ...)
- TODO: check
+ NOT-FOR-US: Cisco WebEx
CVE-2014-2198
RESERVED
CVE-2014-2197
@@ -3905,13 +3905,13 @@
RESERVED
NOT-FOR-US: Cisco Wide Area Application Services
CVE-2014-2195 (Cisco AsyncOS on Email Security Appliance (ESA) and Content Security ...)
- TODO: check
+ NOT-FOR-US: Cisco AsyncOS
CVE-2014-2194 (system/egain/chat/entrypoint in Cisco Unified Web and E-mail ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Web and E-mail Interaction Manager
CVE-2014-2193 (Cisco Unified Web and E-Mail Interaction Manager places session ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Web and E-Mail Interaction Manager
CVE-2014-2192 (Cross-site scripting (XSS) vulnerability in Cisco Unified Web and ...)
- TODO: check
+ NOT-FOR-US: Cisco Unified Web and E-Mail Interaction Manager
CVE-2014-2191 (Cross-site scripting (XSS) vulnerability in the web framework in Cisco ...)
NOT-FOR-US: Cisco
CVE-2014-2190 (Cross-site request forgery (CSRF) vulnerability in the web framework ...)
@@ -5134,7 +5134,7 @@
CVE-2014-1771
RESERVED
CVE-2014-1770 (Use-after-free vulnerability in Microsoft Internet Explorer 8 allows ...)
- TODO: check
+ NOT-FOR-US: Microsoft Internet Explorer
CVE-2014-1769
RESERVED
CVE-2014-1768
@@ -6828,27 +6828,27 @@
CVE-2014-0960
RESERVED
CVE-2014-0959 (IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2014-0958 (Open redirect vulnerability in IBM WebSphere Portal 6.1.0 through ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2014-0957
RESERVED
CVE-2014-0956 (Cross-site scripting (XSS) vulnerability in googlemap.jsp in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2014-0955 (Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.0 ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2014-0954 (IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2014-0953
RESERVED
CVE-2014-0952 (Cross-site scripting (XSS) vulnerability in boot_config.jsp in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2014-0951 (Cross-site scripting (XSS) vulnerability in FilterForm.jsp in IBM ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2014-0950
RESERVED
CVE-2014-0949 (IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2014-0948
RESERVED
CVE-2014-0947
@@ -6880,7 +6880,7 @@
CVE-2014-0934
RESERVED
CVE-2014-0933 (Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere ...)
- TODO: check
+ NOT-FOR-US: IBM WebSphere Portal
CVE-2014-0932 (Cross-site scripting (XSS) vulnerability in IBM Sterling Order ...)
NOT-FOR-US: IBM
CVE-2014-0931
More information about the Secure-testing-commits
mailing list